CVE-2017-5447

CRITICAL

Debian Linux < 45.9.0 - Use After Free

Title source: rule

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-5447. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates an out-of-bounds read vulnerability in Firefox (CVE-2017-5447) by manipulating DOM elements and CSS properties to trigger a heap-buffer-overflow. The PoC uses a combination of JavaScript and HTML to force the browser into an unstable state, as confirmed by the AddressSanitizer (ASan) log.

Description

An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird < 52.1, Firefox ESR < 45.9, Firefox ESR < 52.1, and Firefox < 53.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Google Security Research · htmldosmultiple

https://www.exploit-db.com/exploits/42071

View Code ZIP pw:eip

This exploit demonstrates an out-of-bounds read vulnerability in Firefox (CVE-2017-5447) by manipulating DOM elements and CSS properties to trigger a heap-buffer-overflow. The PoC uses a combination of JavaScript and HTML to force the browser into an unstable state, as confirmed by the AddressSanitizer (ASan) log.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Mozilla Firefox (Nightly ASan build, confirmed in bug report)

No auth needed

Prerequisites: Victim must visit a malicious webpage or open a crafted HTML file

MITRE ATT&CK